In this video tutorial from Microsoft, you will receive an overview of delegated permissions and how they can be leveraged when accessing Microsoft Graph.
Before the Microsoft identity platform can authorize your app to access data in the Microsoft cloud, the app must be granted the privileges that it needs. Similarly, before the Microsoft identity platform can authorize your app to access data through Microsoft Graph, the app must be granted the privileges that it needs.
One way to grant an app the privileges it needs to access and work with your data through Microsoft Graph is by assigning it Microsoft Graph permissions. Delegated permissions, also called scopes, are used in the delegated access scenario. They're permissions that allow the application to act on behalf of a signed-in user. However, the application will never be able to access anything the signed-in user couldn't access.
Azure Active Directory is now Microsoft Entra ID, all other Azure Active Directory branded products are now “Microsoft Entra”. Any reference to Azure Active Directory within this video should be replaced with Microsoft Entra or Microsoft Entra ID as applicable.
Learn more: https://learn.microsoft.com/en-us/graph/permissions-overview?tabs=http